Hello Dan,

Assigning this security bug to you.  Similar to 653095.

Thanks!

This is part of XFA and XFA is disabled in all branches of Chromium.

ClusterFuzz has detected this issue as fixed in range 443057:443122.

Detailed report: https://cluster-fuzz.appspot.com/testcase?key=5965259333697536

Fuzzer: libfuzzer_pdf_codec_tiff_fuzzer
Job Type: libfuzzer_chrome_msan
Platform Id: linux

Crash Type: Use-of-uninitialized-value
Crash Address: 
Crash State:
  TIFFFindField
  _TIFFMergeFields
  TIFFReadDirectory
  
Sanitizer: memory (MSAN)

Recommended Security Severity: Medium

Regressed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_msan&range=422909:423055
Fixed: https://cluster-fuzz.appspot.com/revisions?job=libfuzzer_chrome_msan&range=443057:443122

Minimized Testcase (0.12 Kb): https://cluster-fuzz.appspot.com/download/AMIfv97yG8vNQJ3s25oXGWBpXW0GkXv5IDpR-29lfz4dxt39Ix2xtOvQIkK9EqHW41DiZVsVJxNoFZ7G4j31TTZaxnnEvRbyFBdtpGLN768p4Rt1YBXk1Kykuv_w7mWTPi-dIfug3YolqyHeSnsulCMamCYoGUrO5Q?testcase_id=5965259333697536

See https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/reproducing.md for more information.

If you suspect that the result above is incorrect, try re-doing that job on the test case report page.

ClusterFuzz testcase 5965259333697536 is verified as fixed, so closing issue.

If this is incorrect, please add ClusterFuzz-Wrong label and re-open the issue.

This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot